CVEs-PoC/2021/CVE-2021-30261.md

### [CVE-2021-30261](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2021-30261)
![](https://img.shields.io/static/v1?label=Product&message=Snapdragon%20Auto%2C%20Snapdragon%20Consumer%20IOT%2C%20Snapdragon%20Industrial%20IOT%2C%20Snapdragon%20IoT%2C%20Snapdragon%20Mobile%2C%20Snapdragon%20Voice%20%26%20Music%2C%20Snapdragon%20Wearables&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=APQ8009%2C%20APQ8009W%2C%20APQ8016%2C%20APQ8017%2C%20APQ8037%2C%20APQ8052%2C%20APQ8053%2C%20APQ8056%2C%20APQ8076%2C%20MSM8108%2C%20MSM8208%2C%20MSM8209%2C%20MSM8608%2C%20MSM8909W%2C%20MSM8917%2C%20MSM8920%2C%20MSM8937%2C%20MSM8940%2C%20MSM8952%2C%20MSM8953%2C%20MSM8956%2C%20MSM8976%2C%20MSM8976SG%2C%20PM8937%2C%20QCA1990%2C%20QCA4020%2C%20QCA6174A%2C%20QCA9379%2C%20QET4101%2C%20QSW8573%2C%20Qualcomm215%2C%20SD205%2C%20SD210%2C%20SD429%2C%20SD439%2C%20SD450%2C%20SD632%2C%20SDW2500%2C%20WCD9306%2C%20WCD9326%2C%20WCD9330%2C%20WCD9335%2C%20WCD9340%2C%20WCN3610%2C%20WCN3615%2C%20WCN3620%2C%20WCN3660%2C%20WCN3660B%2C%20WCN3680%2C%20WCN3680B%2C%20WSA8810%2C%20WSA8815%20&color=brightgreen)
![](https://img.shields.io/static/v1?label=Vulnerability&message=Buffer%20Copy%20Without%20Checking%20Size%20of%20Input%20in%20WLAN&color=brightgreen)

### Description

Possible integer and heap overflow due to lack of input command size validation while handling beacon template update command from HLOS in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables

### POC

#### Reference
- https://www.qualcomm.com/company/product-security/bulletins/august-2021-bulletin

#### Github
No PoCs found on GitHub currently.